Affected Packages

Background

Description

The Oulu University discovered that bzip2 does not properly check
offsets provided by the bzip2 file, leading to a buffer overread.

Impact

Remote attackers can entice a user or automated system to open a
specially crafted file that triggers a buffer overread, causing a
Denial of Service. libbz2 and programs linking against it are also
affected.